CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6103 matches found

OSV•added 2025/10/28 2:43 p.m.•2 views

GHSA-9PP9-CFWX-54RM ImageMagick has Integer Overflow in BMP Decoder (ReadBMP)

Summary CVE-2025-57803 claims to be patched in ImageMagick 7.1.2-2, but the fix is incomplete and ineffective. The latest version 7.1.2-5 remains vulnerable to the same integer overflow attack. The patch added BMPOverflowCheck but placed it after the overflow occurs, making it useless. A maliciou...

4.4CVSS7.9AI score0.00076EPSS

Exploits1References6

Tenable Nessus•added 2025/10/28 12:0 a.m.•3 views

SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2025:3796-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:3796-1 advisory. - CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Tenable has extracted the...

7.5CVSS5.6AI score0.00076EPSS

Exploits1References4

OSV•added 2025/10/27 2:39 p.m.•4 views

CLSA-2025-1761575970 Fix of 6 CVEs

SECURITY UPDATE: potential Denial of Service via TLS connection - debian/patches/CVE-2020-14058.patch: Fix sending of unknown validation errors to cert validator - CVE-2020-14058 SECURITY UPDATE: improper Validation of Specified Index leads to Denial of Service via TLS Handshake vulnerability -...

8.6CVSS5.9AI score0.03051EPSS

Exploits0References1

OSV•added 2025/10/27 7:58 a.m.•1 views

SUSE-SU-2025:3796-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282...

7.5CVSS7.2AI score0.00076EPSS

Exploits1References3

SUSE Linux•added 2025/10/27 7:58 a.m.•5 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...

5.7CVSS7.3AI score0.00076EPSS

Exploits1References4

Tenable Nessus•added 2025/10/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-62171

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32,...

8.8CVSS7.2AI score0.00136EPSS

Exploits2References2

SUSE CVE•added 2025/10/24 11:40 p.m.•2 views

SUSE CVE-2025-23345

NVIDIA Display Driver for Windows and Linux contains a vulnerability in a video decoder, where an attacker might cause an out-of-bounds read. A successful exploit of this vulnerability might lead to information disclosure or denial of service...

4.4CVSS6.4AI score0.00039EPSS

Exploits0References3

OSV•added 2025/10/24 2:33 p.m.•3 views

OESA-2025-2501 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

7.5CVSS7.2AI score0.00076EPSS

Exploits1References2

OSV•added 2025/10/24 2:33 p.m.•4 views

OESA-2025-2500 ImageMagick security update

7.5CVSS7.2AI score0.00076EPSS

Exploits1References2

OSV•added 2025/10/24 2:33 p.m.•2 views

OESA-2025-2499 ImageMagick security update

7.5CVSS7.2AI score0.00076EPSS

Exploits1References2

OSV•added 2025/10/24 2:33 p.m.•1 views

OESA-2025-2498 ImageMagick security update

7.5CVSS7.2AI score0.00076EPSS

Exploits1References2

OSV•added 2025/10/24 2:33 p.m.•2 views

OESA-2025-2497 ImageMagick security update

7.5CVSS7.2AI score0.00076EPSS

Exploits1References2

OSV•added 2025/10/24 12:38 p.m.•1 views

SUSE-SU-2025:20900-1 Security update for haproxy

This update for haproxy fixes the following issues: - CVE-2025-11230: Fixed mjson JSON decoder excessive resource consumption bsc1250983...

7.5CVSS5.8AI score0.00468EPSS

Exploits0References3

OpenVAS•added 2025/10/24 12:0 a.m.•1 views

Huawei EulerOS: Security Advisory for gdk-pixbuf2 (EulerOS-SA-2025-2255)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00938EPSS

Exploits0References2

Tenable Nessus•added 2025/10/24 12:0 a.m.•3 views

NewStart CGSL MAIN 7.02 : xz Vulnerability (NS-SA-2025-0248)

The remote NewStart CGSL host, running version MAIN 7.02, has xz packages installed that are affected by a vulnerability: - XZ Utils provide a general-purpose data-compression library plus command-line tools. In XZ Utils 5.3.3alpha to 5.8.0, the multithreaded .xz decoder in liblzma has a bug wher...

8.7CVSS6.7AI score0.00041EPSS

Exploits0References3

OpenVAS•added 2025/10/24 12:0 a.m.•1 views

Huawei EulerOS: Security Advisory for gdk-pixbuf2 (EulerOS-SA-2025-2287)

7.5CVSS6.7AI score0.00938EPSS

Exploits0References2